^//W^ United States Patent an d Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
P.O. Box 14S0 

Alexandria, Virginia 22313-1450 
www.uspto.gov 



APPLICATION NO. 



FILING DATE 



FIRST NAMED INVENTOR 



ATTORNEY DOCKET NO. 



CONFIRMATION NO. 



09/748,839 



12/27/2000 



Ronald M. Smith SR. 



POU919970091US2 



7967 



7590 



05/06/2004 



EXAMINER 



IBM Corporation 
Intellectual Property Law 
2455 South Road (M/S P386) 
Poughkeepsie, NY 12601 



ART UNIT 



SEAL, JAMES 

| PAPER NUMBER 



2135 

DATE MAILED: 05/06/2004 



3 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



w 


Application No.flb 


Applicant(s) 




09/748,839 


SMITH ETAL 


Office Action Summary 






Examiner 


Art Unit 






James Seal 


2135 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address ~ 



Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

1)S Responsive to communication^) filed on 27 December 2000 . 
2a)Q This action is FINAL. 2b)[3 This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 21 3. 

Disposition of Claims 

4) ^ Claim(s) 1-19 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) ^ Claim(s) 1-19 is/are rejected. 

7) ^ Claim(s) 12-19 is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) |3 The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) Q Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

1 . This action is in responds to applicant's correspondence of 27 December 2000. 

2. IDS dated 27 December 2000, have been consider by the examiner and a 
signed copy is enclosed with in this action. 

3. Claims 1-19 are pending. 

Oath/Declaration 

The specification to which the oath or declaration is directed has not been 
adequately identified. See MPEP § 601 .01 (a). 

It does not state that the person making the oath or declaration has reviewed and 
understands the contents of the specification, including the claims, as amended 
by any amendment specifically referred to in the oath or declaration. 

It does not state that the person making the oath or declaration acknowledges 
the duty to disclose to the Office all information known to the person to be 
material to patentability as defined in 37 CFR 1.56. 

The clause regarding "willful false statements ..." required by 37 CFR 1.68 has 
been omitted. 

Specification 

4. The Abstract is objected to because of the following informalities: second line 
appears to have omitted an "more" before authorities so that the sentence should read 
and one or more authorities 

5. In the Cross-Reference to related Application, 08/884724, 08/885612, and 
08/884721 have matured into patents and the Specification should reflect that data. 

Claim Objections 

6. Claim 12 is objected to because of the following informalities: Claim 12 recites a 
system while dependent claims 1 3-1 9 recite an apparatus. For the purpose of prior art 
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the examiner will assume claim 12 refers to an apparatus. Appropriate correction is 
required. 

Claim Rejections - 35 USC § 103 

7. Claims 1 and 4-5, 12, 15 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Taaffe US 47471 39 A, and further in view of Glowny et. al. US 
5537642 A. 

8. As per claim 1, the limitation of a cryptographic system (see Taaffe, Abstract, 
Column 4, lines 30-33; Column 9, lines 20-21) having one of a plurality of states, Taaffe 
discloses a finite state machine FSM (see Column 2, lines 55-60, with a plurality of 
states see figure 2 , Table Column 6 illustrates present and future states and possible 
transitions), and interactive way for controlling the transition of the system from an 
existing state to a future state (Column 2, lines 56-67; Column 6, lines 17-44; Column 7, 
lines 61-65), the central processing unit provides task to the microprocessor (or co- 
processor) which is programmed as a FSM and the FSM provides updates on those 
tasks by reporting the status of the tasks (status messages) (Column 7, lines 8-1 1 
discuss the interaction of the CPU with the FSM). The limitation of storing control 
information specifying permissible future states based on a current state and a 
requesting authority is taught by Taaffe. In one embodiment Taaffe teaches that the 
microprocessor which may includes the FSM and encryptor/decryptor (Column 9, lines 
20-21 ) and memory in the form of tables storage for keying information to be used by 
the encryptor/decryptor (Column 9, line 30), thus the keying information acts as control 
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information for the encryptor/decryptor at the request of the CPU (authority) for 
changing the state of the data from unencrypted (present state) to encrypted (future 
state) (Column 7 lines 8-1 1 ; lines 63-67). The limitation of receiving a request from the 
CPU (authority) to change the current state of the cryptographic system the request 
containing state change information is disclosed by Taaffe Column 7, line 8-1 1 (the cpu 
and FSM communicate); lines 13-22 (CPU input key sequence and applies it through 
the I/O to the FSM, Column 9, lines 20-21 (the co-processor can then step through 
states and thus changing its states (Column 7, lines 63-66) to generate keys or to 
encrypt/decrypt or return keys to the cpu in compliance with its request. Taaffe is silent 
on the cpu having means to authenticate whether replies originated and further whether 
the cryptographic system will perform the requests only after it determines the request 
are indeed from the cpu. 

9. Glowny teaches method of generating an authentication security code for 
message passed between tasks running on a computer system having addressable 
memory shared by tasks (for example a request by the cpu to the co-processor and the 
processing of a tasks (change of state) by the co-processor) see Glowny Column 7, 
lines 12-17. Further Glowny teaches validating said authentication security code before 
processing said request, Column 7, line lines 48-50; Column 8 line 1 ; lines 5-6. It would 
have been obvious to one of ordinary in the art at the time the invention was made, to 
have modified Taaffe FSM crypto co-processor with the teaching of Glowny of 
authenticating information being exchanged between processor, to prevent an attacker 
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from intercepting or changing commands being processed in route between the 
processors. Claim 1 is rejected. 

10. As per claim 4, the limitation of including a unique query value in the 
authentication information is disclosed by Glowny see Column 6 lines 30-44. Claim 4 is 
rejected. 

11. As per claim 5, the storing a unique transaction value (see Glowny, Column 6, 
lines 7-9 and lines 22-23), including such a value with requests (see Glowny, Column 6, 
lines 23-24), the request (task) being carried out by validating that the value is 
contained in the request (Glowny, Column 6, lines 32-33) and finally updating the value 
(see Glowny, Column 6, line 66-67). Claim 5 is rejected. 

12. Claim 12 recites an apparatus for a means plus function for performing claim 1 
and is rejected in view of the same prior art of record. 

13. Claim 15 recites an apparatus for a means plus function for performing claim 5 
and is rejected in view of the same prior art of record. 

14. Claims 2-3, 6-1 1 , 13-14 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Taaffe and Glowny as applied to claim 1 above, and further in view of 
Schneier Applied Cryptography. 

15. As per claim 2 the authentication of information using digital signature. Neither 
Taaffe nor Glowny authenticate by using a digital signature (Glowny uses a check sum 
and random number). Schneier teaches the use of the digital signature for 
authenticating the sender of a message. It would have been obvious to one of ordinary 
skill in the art at the time the invention was made to have modified the teaching of 
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Taaffe/Glowny with those of Schneier because digital signature is more difficult to forge, 
its authenticity is easily recognized, it is not reusable, unalterable and finally repudiated 
(see Schneier page 35). Claim 2 is rejected. 

16. As per claim 3, Taaffe and Glowny are silent on the limitation of storing a private 
key in the cryptographic system to be used in generating digital signature. Schneier 
teaches the use of the private key for digital signing documents. It would have been 
obv ious to one of ordinary skill in the art at the time of the invention was made to have 
modified the teachings of Taaffe/Glowny with those of Schneier because public key 
encryption is more secure and does not require third parties see Schneier page 37. 

17. As per claim 6, the limitation of providing in addition to a random part a 
sequential part being incremented upon performance of a request. Taaffe and Glowny 
are silent on the need for a sequential part to include with the message request. 
Schneier note that even in a public key system that it is possible for an attacker to 
modify the order of the messages without decrypting them. Such attacks are called 
Replay attack (see Schneier page 58-59). It would have been obvious to one of 
ordinary skill in the art at the time the invention was made to have added such a number 
with each request to prevent a replay attack. It should be noted that computers assign 
to each process a pid, that is process id, and such a number is increment for each new 
request and so it would be sequential. Claim 6 is rejected. 

18. As per claim 7, the inclusion of a digital signature as a means of authenticating 
the sender as part of the message is taught by the Glowny/Schneier combination (see 
claim 2). Claim 7 is rejected. 
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1 9. As per claim 8, the further limitation of storing the public key in for the cpu 
(authority) and using the public key as a means of authenticating is taught by the 
combination (Glowny Column 6, lines 7-8) and Schneier (pages 37-38). It would have 
been obvious for one of ordinary skill in the art at the time that the invention was made 
to have combine the ideas of shared memory with authentication using a public key 
infrastructure because of the security and conveyance (no third parties). Claim 8 is 
rejected. 

20. As per claim 9, the proposed future state (command) is stored in a pending 
command register. Glowny discusses managing resources Column 1, lines 34-40 and 
notes there are three basic types of messages sent between tasks (in this case, the 
interaction is between a computer and the operator but in more modern computing 
engines processor to processor). Some of these relate to pending request (mount 
tape) and thus one of ordinary skill in the art at the time of the invention would have 
been motivated to have modified the Glowny device with a pending command register 
to hold request until other tasks could be completed, because each operation carried 
out on a computer requires perhaps nanosecond to complete and if the processor has 
to wait for the command to be carried out at the time the other task is completed a lost 
of hundreds of thousands of operations in the process, and thus a pending command 
register is more efficient. Claim 9 is rejected. 

21 . As per claim 1 0, the limitation of the transistion from an initial state (of the state 
machine) to a final state though a series of intermediate states each being 
authenticated using bits and a signature summary under the control of the cpu 
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(authority) is taught by a combination of Taaffe (transition between intermediate states, 
Column 7, 63-67), Glowny ( the need to authenticate such transitions, Column 6, lines 
30-37) and finally Schneier (authentication through digital signature page 35). Such 
signatures being carried out using single bit operation would have been obvious to one 
of ordinary skill in the art at the time that the invention was made because a simple yes 
1 or no 0 would be all that is needed to proceed to the next state. Claim 10 is rejected. 

22. As per claim 1 1 , the limitation of a program storage device reaable by a machine, 
such that the program consists of instruction executable by the machine performing the 
process is disclosed by Taaffe (Column 7, lines 30-42) teaches a means of 
implementing program storage for his invention. Claim 1 1 is rejected. 

23. Claim 13-14 and claims 15-19 recites a means plus function for performing claim 
2-3 6-7 9-10 and is rejected in view of the same prior art of record. 

Comments 

24. The theoretical underpinning of a classical computer processor is that of a finite 
state machine. It would appear then that any cpu and cryptoprocessor together with 
memory and standard authentication being performed using for example Schneier's 
public key digital signature (which would appear to prevent tampering with commands in 
transit between the two processors) and at least some sequential indicator to prevent a 
replay attack would satisfy the limitations recited above. 

Conclusion 



Application/Control Number: 09/748,839 



Page 9 



Art Unit: 2135 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to James Seal whose telephone number is 703 308 4562. 
The examiner can normally be reached on M-F, 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on 703 305 4393. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 




James Seal 
Examiner AU 2135 
May 1,2004 



